Fix #1999: broken federation with pods using allow-listing

2025-10-04 19:09:17 +02:00 · 2020-08-24 13:43:31 +02:00 · 2020-08-24 13:43:31 +02:00 · 641e1525ac
commit 641e1525ac
parent e309e93d3b
5 changed files with 23 additions and 4 deletions
--- a/api/funkwhale_api/federation/authentication.py
+++ b/api/funkwhale_api/federation/authentication.py
@ -46,15 +46,14 @@ class SignatureAuthentication(authentication.BaseAuthentication):
            domain = urllib.parse.urlparse(actor_url).hostname
            allowed = models.Domain.objects.filter(name=domain, allowed=True).exists()
            if not allowed:
+                logger.debug("Actor domain %s is not on allow-list", domain)
                raise exceptions.BlockedActorOrDomain()

        try:
            actor = actors.get_actor(actor_url)
        except Exception as e:
            logger.info(
-                "Discarding HTTP request from blocked actor/domain %s, %s",
-                actor_url,
-                str(e),
+                "Discarding HTTP request from actor/domain %s, %s", actor_url, str(e),
            )
            raise rest_exceptions.AuthenticationFailed(
                "Cannot fetch remote actor to authenticate signature"